Apparatus, and associated method, for facilitating access to a home, or other public network

ABSTRACT

An apparatus, and an associated method, for facilitating home, or other public network access by a wireless device. The access is made in order to access public-network services by the wireless device when connecting to the public network by way of another network. Access availability by way of 802.1x-capable wireless local area networks, if any, is determined. A listing is made of networks through which connections are able to be made. And, if operator policy permits, a public-network access attempter attempts to make communication connections by way of non-802.1x-capable wireless local area networks, if any. Identification is made of network access availability, and such identified network access is displayed to provide a user of the wireless device with an opportunity to select in what manner to connect to the public network.

The present disclosure relates generally to a manner by which tofacilitate access of a wireless device to a network, such as its HPLMN(Home Public Land Mobile Network). More particularly, the presentdisclosure relates to an apparatus, and an associated method, in whichthe wireless device accesses the network by way of a firstauthentication-type connection, if available, or by way of a secondauthentication-type connection, if available.

BACKGROUND OF THE DISCLOSURE

Various cellular, and cellular-like systems have been developed anddeployed that provide mobile, and other wireless, communicationservices. Wireless local area networks (WLANs) are exemplary of suchcellular-like communication systems. A WLAN is typically an IP (InternetProtocol)-capable network implemented, e.g., pursuant to Wi-max,802.11a, b, g, n, GERAN (Generic Radio Access Network), UTRAN (UniversalTerrestrial Radio Access Network), LTE (Long Term Evolution), or any ofvarious other network-technology schemes. WLAN systems are generallydeployed over relatively smaller areas than the areas over which acellular, i.e., a PLMN (Public Land Mobile Network) is typicallydeployed but other WLAN technologies such as but not limited to Wi-maxare now providing coverage comparable to that of a PLMN. A WLAN isdeployed, for instance, to encompass a business, or other, enterprise.Sometimes, a WLAN is operated by an operator that also operates a PLMN.

Interworking between WLAN systems and PLMN systems provide for seamlesscommunication operations using a mobile station operable in both of thenetwork systems. As communication by way of a WLAN system is generallyless expensive than communications by way of a PLMN system, ifcommunications by way of the WLAN system are available, communicationsby way of the WLAN system are generally preferred.

A mobile station that operates in a PLMN system, is associated with ahome network, i.e., an HPLMN (Home Public Planned Mobile Network).Subscription is typically made for specific services, herein referred toas HPLMN services, permitted of the mobile station pursuant to itsservice subscription. When the mobile station is positioned to be indirect communication connectivity at the HPLMN, such services are madeavailable to the mobile station upon its authentication at the HPLMN.When, however, the mobile station roams beyond the coverage area of theHPLMN, or otherwise does not communicate directly with the HPLMN, themobile station accesses the HPLMN by way of another network, such as aWLAN. An authentication mechanism, carried out by way of the othernetwork, for access by the mobile station to the HPLMN services issometimes required.

Recent attention has been directed towards such a mechanism. Forinstance, a series of documents of the technical specification, TS24.234 define two mechanisms by which to permit a wireless device, a UE(User Equipment), to access HPLMN services. One mechanism pertains tothe use of IEEE 802.1x authentication. And, a second mechanism is by wayof a non-802.1x authentication-capable WLAN. In the second mechanism,the wireless device tunnels directly to a HPLMN network node e.g. a PDG(Packet Data Gateway) etc. The availability of networks by way of whichthe wireless device is able to attempt access to the HPLMN servicesdepends upon the location at which the wireless device is positioned.

While the aforementioned technical standard defines two mechanisms bywhich the wireless device can access an HPLMN system, the existingtechnical specification, to date, has not defined various aspects of themechanisms. For instance, the technical specification fails fully todefine working of the mechanisms when combined together.

BRIEF DESCRIPTION OF THE DRAWINGS

FIG. 1 illustrates a functional block diagram of an exemplarycommunication system in which an embodiment of the present disclosure isoperable.

FIG. 2 illustrates an exemplary screen display generated pursuant tooperation of an embodiment of the present disclosure.

FIG. 3 illustrates a sequence diagram representative of the sequence ofoperation of an embodiment of the present disclosure.

FIG. 4 illustrates a method flow diagram representative of the method ofoperation of an embodiment of the present disclosure.

DETAILED DESCRIPTION

The present disclosure, accordingly, advantageously provides anapparatus, and an associated method by which to facilitate access of awireless device to its home network, such as a home public land mobilenetwork (HPLMN).

Through operation of an embodiment of the present disclosure, a manneris provided by which to facilitate the wireless-device access tohome-network services by way of a first authentication-type connection,if available, or, selectably by way of a second authentication-typeconnection, if available.

In one aspect of the present disclosure, a wireless device monitors fornetwork broadcasts network-identifying, and other, information. Throughthe detection of the broadcasts, the wireless device is made aware ofthe potential availability of the associated networks through which tocommunicate. The networks are identified, for instance, by SSID (ServiceSet Identifier) values.

In another aspect of the present disclosure, SSID lists are maintainedat the wireless device that identify the SSID values associated with thenetworks that are preferred to be used by the wireless device, such aswhen the wireless device roams beyond the HPLMN. In one implementation,multiple SSID lists are maintained, with entries of SSID values on thedifferent ones of the lists associated with different levels ofpreference of usage. And, in one implementation, a prohibited-SSID listis further maintained, listing SSID values associated with networks withwhich the wireless device is prohibited from communicating. And, in oneimplementation, the SSID lists correspond to the lists set forth in theaforementioned technical specification of TS 24.234.

In another aspect of the present disclosure, the SSID values detectedduring network scans by the wireless device are compared with valuesstored at one or more of the SSID lists. The results of the comparisonidentify networks, by their SSID values, that are both detected by thewireless device and listed on an SSID list of allowed networks of thewireless device.

In another aspect of the present disclosure, networks identified as aresult of the comparison are further identified to be 802.1x-capable ornon-802.1x-capable. Association and authentication mechanisms for802.1x-capable networks are defined, e.g., in technical specification,TS 24.234. And, for each of the 802.1x-capable networks, identified byan associated SSID value, an availability of access to the HPLMN by wayof the 802.1x-capable networks is determined. That is to say, if morethan one network is identified to be potentially available and on anSSID list, the association and authentication mechanisms are repeated byway of the additional network. That is to say, for each networkidentified as a result of the comparison, determination is made of theaccess availability with the network node e.g. packet data gateway, orother entity, of the home network of the wireless device. If accessible,the wireless device makes note of the successful access. A list isthereby created of each 802.1x-capable network through which access isable to be made to access the home network of the wireless device.

In another aspect of the present disclosure, the comparison of theavailable networks with the SSIDs stored at a list also identifies, ifany of the identified networks is a non-802.1x-capable network. For eachsuch non-802.1x-capable network, selectably, attempt is made to set up atunnel to the network node e.g. packet data gateway etc of the HPLMNassociated with the wireless device. If the tunneling is successful, andthe wireless device is able to perform connection with the home networkby way of the SSID-identified network, the wireless device makes note ofthe success of the connection attempt, and the tunnel is torn down. Ifmore than one non-802.1x-capable network is identified, the mechanism isrepeated for each of the additional, identified networks. If aconnection is successfully formed, the wireless device makes note of thesuccessful connection and tears down the tunnel.

A listing is thereby provided of each of the 802.1x-capable andnon-802.1x networks that provide for connection to the home network ofthe wireless device and, thereby, access to the HPLMN services.

In another aspect of the present disclosure, an operator policy isprovided and stored at the wireless device. The policy is stored at amemory element that is either internal to the wireless device or forms aremovable memory removeably connectable to the wireless device. Theoperator policy identifies whether the wireless device should attempt toconnect to the home-network by way of a non-802.1x-capable network.Other implementations of the policy could be to try 802.1x networksfirst or non 802.1x first depending upon the operator policy, selectionis made to attempt the connection by way of the non-802.1x-capablenetworks.

In these and other aspects, therefore, an apparatus, and an associatedmethod, is provided for facilitating network access by a wirelessdevice. Availability of access to the network by way offirst-authentication-type connections, if available is determined. And,network access is selectably attempted by way of second-authenticationtype connections, if available. Network access availability isidentified responsive to the home-network access attempts.

Turning first, therefore, to FIG. 1, an arrangement, shown generally at10, forms a wireless communication system having mobile stations, suchas the mobile station 12 operable to communicate with a network part ofthe communication system. While only a single mobile station 12 is shownin the figure, in a typical arrangement, large numbers of mobilestations are concurrently operable to communicate pursuant toperformance of a communication service. Mobile stations are wirelessdevices and are sometimes referred to as being UEs, User Equipment. Theterms wireless device, mobile station, and UE are used interchangeablyherein.

The exemplary network portion of the communication system includes bothpublic land mobile network (PLMNs) 16 and wireless local area networks(WLANs). Here, one of the public land mobile networks forms a homenetwork, here an HPLMN (Home Pubic Land Mobile Network) 16-1. Othermobile stations analogously are associated with home networks, notnecessarily the HPLMN 16. That is to say, a mobile station is associatedwith a particular PLMN 16 as its home network. It should be noted thatthe arrangement shown in FIG. 1 is merely exemplary. And, while thenetworks 16 are shown to be PLMNs, viz., variously VPLMNs (VisitedPublic Land Mobile Networks) and an HPLMN (Home Public Land MobileNetwork), these networks, in other arrangements, are implemented asother network types with appropriate network reconfiguration, as needed.

The mobile station 12 is here a multi-mode mobile station that permitsits communication not only in conformity with the communicationprotocols to permit its communication with the HPLMN 16-1 and alsoothers of the PLMNs 16. The networks 16 are here shown to beinterconnected by an SS7, or other appropriate, entity 22. And, theHPLMN 16-1 also includes a network node, here for illustrative purposescalled a packet data gateway (PDG) 24 but could be another network nodethat provides access to the home network. The packet data gateway orother node is identified by an IP address that is known to the mobilestation. The networks 16 also include packet data gateways (notseparately shown). When the mobile station is positioned within thecoverage area of the HPLMN, the mobile station is capable ofcommunicating therewith pursuant to a service subscription or otherauthorization. And, if roaming, or other, agreements are in place withthe operators of the PLMNs 16, the mobile station is able also, usingthe same communication protocols, to communicate with its HPLMN 16-1 byway of a PLMN 16. The packet data gateway, or other node, includes,e.g., the functionality of a detector, an authenticator, and an accessgrantor.

The multi-mode capability of the mobile station here also permits itscommunication with a WLAN 26. Here, multiple WLANs are shown withoverlapping coverage areas that include the location at which the mobilestation is positioned. The communication protocols used by the WLANs areof any of various schemes including, for instance, Wi-max, 802.11a, b,g, n GERAN, UTRAN, LTE or any of various other IP, or other,network-types. In the arrangement shown in FIG. 1, the mobile station 12is positioned within coverage areas encompassed by each of the WLANs 26.And, the mobile station potentially is able to communicate with, and byway of, any of the WLANs 26. While the mobile station is potentiallyable to communicate with one or more of the WLANs 26, home-networkservices are accessible by way of the home network of the mobilestation. While communications are carried out by way of a WLAN, in orderto access the HPLMN services, access must be made to the HPLMN. In thearrangement shown in FIG. 1, the mobile station is beyond the coveragearea of the HPLMN. And, in other scenarios, even if within the coveragearea of the HPLMN, there sometimes are reasons for which to prefer thatthe communications with the mobile station be carried out by way of aWLAN.

The WLANs are variously shown to be placeable in communicationconnectivity with the HPLMN by way of interworking units (IWUs) 32 or byway of PLMNs 16. The interworking units provide for interworking betweenWLANs and PLMNs. Signaling and user data is converted by the IWUs topermit its use when communicated between the different types of networkswhen communicated between the networks.

As noted previously, the technical specification, TS 24.234 series ofdocuments define two mechanisms by which to permit a wireless device toaccess HPLMN services. A first utilizes an IEEE 802.1x authenticationmechanism. And, a second uses a non-802.1x authentication-capable WLAN.As also noted previously, the technical specification fails to specifyhow the two mechanisms work when combined together.

Accordingly, pursuant to an embodiment of the present disclosure, themobile station includes apparatus 42 that facilitates home-networkaccess by a mobile station. The apparatus is functionally represented,implementable, e.g., in any desired manner including, in part,algorithms executable by processing circuitry. The apparatus is hereshown to be connected to transceiver circuitry here formed of a receivepart 43 and a transmit part 44. While illustrated to be separate fromthe transceiver circuitry, in one implementation, parts of the apparatus42 are embodied together with the transceiver circuitry parts. Theapparatus includes a first home-network access availability determiner52, a second home-network access attempter 54, and an identifier 56.and, as noted previously, while the networks 16, in the exemplaryarrangement, comprise PLMNs, and the apparatus, in the exemplaryarrangement, is described to facilitate access to the HPLMN 16-1, moregenerally, the apparatus facilitates access to any selected public, orother, network.

A memory element 62 is also illustrated. The memory element is of any ofvarious constructions, formed, for instance, of a pc card such as aPCMCIA a compact flash I, (CF-I), a compact flash II, (CF-II), a smartmedia card (SM/SMC), a memory stick, a memory stick duo (MSD), a memorystick pro duo (MSPD), a memory stick pro-HG duo (MSPDX), a memory stickmicro m2 (M2), a multi media card (MMC), a mutli media card (RS-MMC), anMMC micro card (MMC micro), a secure digital card (SD), an SxS (SxS), auniversal flash storage (UFS), a mini SD card (mini SD), a micro SD card(micro SD), an XD-picture card (xD), an intelligence stick (I Stick), aserial flash module (SFM), a micro card (micro card), or an NT card (NTNT+) USIM, ISIM, R-URIM, UICC etc. The memory element also, e.g.,comprises a fixed storage location of the wireless device.

In one implementation, listings 64 of SSIDs (Service Set Identifiers)are maintained at the memory element 62. The lists are, e.g., inconformity with the technical specification TS24.234. Or, alternately,the SSID lists are configured in other manners, such as by containing,on separate lists, SSID values of networks of differing preferencelevels including, e.g., most-preferred and least-preferred networks.

And, an interface (UI) 72 is further shown. The interface 72 includes aninput and a display to permit input of information and display ofinformation, respectively. The input comprises, for instance, atelephonic keypad and a QWERTY keyboard. And the display, e.g.,comprises a liquid crystal display capable at least of displaying alphanumeric information.

In operation, the wireless device performs scanning for broadcasts ofinformation by different ones of the WLANs to determine whether thewireless device is within coverage area of the broadcasting WLAN.Detected SSID values in the broadcast information are compared withstored SSID values, stored at the memory element 62. The broadcastsindicate 802.1x-capability of the detected WLAN. Or, the wireless deviceis otherwise made aware of the capability of the WLAN, such as bypre-stored information at the wireless device. And, the wireless devicecompares detected information with stored information, stored at thememory element 62. The comparison indicates which networks have signalsdetected by the wireless device and also are permitted to be used by thewireless device with which, and through which, to communicate.

The access availability determiner 52 operates to determine availabilitya communication of access to the HPLMN 16 by way of an 802.1x-compatibleWLAN 26, if any have been identified. When multiple WLANs have beenidentified as being 802.1x-compatible, the determiner iterates theprocedure for each of the identified WLANs. The access availabilitydetermination by way of each of the 802.1x-capable WLAN is carried outin conformity with the mechanisms set forth in the aforementionedtechnical specification TS 24.234. Results of the attempt are learned,and indications are provided to the identifier 56 that, in turn, causethe results to be displayed at the display of the user interface.

The access attempter 54 operates to attempt to form connections with theHPLMN 16 if operator policy is permitting of such connection attempts.The operator policy is provided to the wireless device, here indicatedto be stored at a memory location 78, accessible by the attempter 54.While functionally represented separate from the memory element 62, thememory location, in an exemplary implementation, is physically locatedat the memory element 62

In exemplary operation, the access attempter 54 attempts, for eachnon-802.1x-compatible WLAN, if any, and when authorized by operatorpolicy, to attempt to set up a tunnel to the network node, e.g., packetdata gateway 24 of the HPLMN by way of the identified WLAN. The tunnelis by way of the WLAN and IWU 32, if such is the connection with thepacket data gateway 24. Or, the tunnel is formed by way of a PLMN 16 ifsuch is the communication to the HPLMN. The IP address of the end point,e.g., the PDG 24 is also known to the wireless device. Knowledge of theIP address is obtained, for instance, responsive to a DNS (Domain NameSystem) look-up. If a successful connection is formed, the wirelessdevice then tears down the tunnel and iteratively performs the sameprocedure for each, if any, additional non-802.1x WLAN. Results of theconnection attempts are learned and provided to the identifier 56. Theidentifier causes display on the user interface indications of thesuccessful communication-path connections.

In the event that the non-802.1x-capable WLANs include some form ofrequired authentication, and the wireless device is unable to reach thedestination IP address or resolve a FQDN (Fully Qualified Domain Name),in one implementation, the wireless device is further operable to openup a browser and attempt to obtain information to permit a successfulconnection attempt.

FIG. 2 illustrates an exemplary screen display 84 displayable upon theuser display of the interface 72 (shown in FIG. 1). In the exemplaryimplementation, the identifier 56 (shown in FIG. 1) causes display ofthe display 84 completion of connection attempts. That is to say, whenboth 802.1x-capable and non-802.1x capable networks are detected andoperator policy permits operation of the second attempter 54, thedisplay displays information upon completion of both of the attempters52 and 54. If WLANs of particular connection and authentication-typesare not available, then the display, correspondingly, does not includeindication of any of such connections. Here, the exemplary display 84shows three columns, a first column 86, a second column 88, and a thirdcolumn 92. The first column indicates a PLMN identity, the second column88 shows a WLAN identity, and the third column 92 shows a method ofaccess for each of the available connections.

FIG. 3 illustrates and exemplary process, shown at 102, pursuant towhich an embodiment of the present disclosure operates. The process isexemplary only. In other implementations, process steps are preformed inany of various orders.

In the exemplary process, the wireless device 12 scans channels todetect broadcasts 104 of information by different ones of the WLANs 26.Pursuant to the scanning, detection is made, indicated by the block 104,of potentially available WLANs and their authentication types, at leastin terms of 802.1x-capability. Comparison is made, indicated by theblock 112, of detected SSID values with stored SSID values, stored atthe wireless device.

Then, and as indicated by the block 114, an availability of access tothe home network is determined by way of each, if any, of the802.1x-capable WLANs that are available and listed at the memoryelement. Mechanisms corresponding to those set forth in the technicalspecification TS 24.234, are used, indicated by the segments 118.

Then, as indicated by the block 122, the wireless device checks onoperator policy to determine whether the wireless device is permitted tomake connection attempts by way of non-802.1x-capable networks. If so,attempts, indicated by the block 124, are made and tunnelingconnections, here indicated by the segments 128 are carried out.

Identification is made, indicated by the block 132, of the successfulconnection attempts. And, a display, indicated by the block 134 is madeof the identified successful connections. A user of the wireless device,by viewing the display, is provided with the opportunity to makeselection of use of a particular WLAN pursuant to communicationoperations to perform a communication service. Following are psuedo-codeimplementations of various embodiments for carrying out processes, suchas processes included in the process 102.

Embodiment 1

Scan band SSID on User Controlled WLAN Specific Identifier list  Associate   802.1x perform TS24.234 procedures   Optional non 802.1xprocedures supported     Yes     Non 802.1x attempt to connect to HPLMNdirectly       Optionally display splash screen       Try X times        Success store         Fail     No   Checked all SSIDs on Usercontrolled list     No return to Associate above     Yes next line SSIDOperator Controlled WLAN Specific Identifier list   Associate   802.1xperform TS24.234 procedures   Optional non 802.1x procedures supported    Yes     Non 802.1x attempt to connect to HPLMN directly      Optionally display splash screen       Try X times         Successstore         Fail     No   Checked all SSIDs on Operator controlledlist     No return to Associate above     Yes next line Check otherSSIDs   Associate   802.1x perform TS24.234 procedures   Optional non802.1x procedures supported     Yes     Non 802.1x attempt to connect toHPLMN directly       Optionally display splash screen       Try X times        Success store         Fail     No   Any SSIDs left     No returnto Associate above     Yes next line Display PLMNs

Embodiment 2

SSID on nth Controlled WLAN Specific Identifier list Associate 802.1xperform TS24.234 procedures Optional non 802.1x procedures supported YesNon 802.1x attempt to connect to HPLMN directly Optionally displaysplash screen Try X times Success store Fail No Checked all SSIDs on nthcontrolled list No return to Associate above Yes next line More SSIDsleft Yes More lists left Yes Increase to nth+1 list Repeat procedureabove No Perform nth procedure last time No Display PLMN

Embodiment 3

Scan band SSID on User Controlled WLAN Specific Identifier listAssociate 802.1x perform TS24.234 procedures HPLMN connect Yes-stopprocedure No-store PLMN list Optional non 802.1x procedures supportedYes Non 802.1x attempt to connect to HPLMN directly Optionally displaysplash screen Try X times Success stop procedure Fail store PLMN list NoChecked all SSIDs on User controlled list No return to Associate aboveYes next line SSID Operator Controlled WLAN Specific Identifier listAssociate 802.1x perform TS24.234 procedures HPLMN connect Yes-stopprocedure No-store PLMN list Optional non 802.1x procedures supportedYes Non 802.1x attempt to connect to HPLMN directly Optionally displaysplash screen Try X times Success stop procedure Fail store PLMN list NoChecked all SSIDs on Operator controlled list No return to Associateabove Yes next line Check other SSIDs Associate 802.1x perform TS24.234procedures HPLMN connect Yes-stop procedure No-store PLMN list Optionalnon 802.1x procedures supported Yes Non 802.1x attempt to connect toHPLMN directly Optionally display splash screen Try X times Success stopprocedure Fail store PLMN list No Any SSIDs left No return to Associateabove Yes next line Choose PLMN per TS 24.234

Embodiment 4

Network ID on nth Controlled Network ID Specific Identifier listAssociate Perform Access method 1 Home Network Available Yes-stopprocedure No-store Network IDs received Optional 2^(nd) access methodsupported Yes 2^(nd) access method attempt to connect to Home networkdirectly Optionally display splash screen Try X times Success stopprocedure Fail store Network IDs list No Checked all Network IDs on nthcontrolled Network IDlist No return to Associate above Yes next lineMore Network IDs left Yes More lists left Yes Increase to nth+1 listRepeat procedure above No Perform nth procedure last time No DisplayNetwork IDs / names

Embodiment 5

The non-802.1x Network Selection leaf indicates whether a WLAN UE whenperforming a network selection shall also attempt to access non 802.1xWLANs.

-   -   Occurrence: One    -   1) Format: bool    -   Access Types: Get, Replace    -   Values: 0, 1    -   0—Indicates that the network operator prefers the Network        Selection to try non 802.1x WLANs.    -   1—Indicates that the network operator prefers the Network        Selection to not try non 802.1x WLANs        Note the bit vales could be swapped around above.

<Node>  <NodeName> Non 802.1x Network Selection </NodeName> <DFProperties>   <AccessType>    <Get/>    <Replace/>   </AccessType>  <DFFormat>    <bool/>   </DFFormat>   <Occurrence>    <One/>  </Occurrence>   <DFTitle> Non 802.1x Network Selection </DFTitle>  <DFType>    <MIME>text/plain</MIME>   </DFType>  </DFProperties></Node>

FIG. 4 illustrates a method flow diagram, shown generally at 154,representative of the method of operation of an embodiment of thepresent disclosure. The method facilitates home-network access by awireless device.

First, and as indicated by the block 156, availability of public networkaccess is determined by way of first-authentication type connections, ifavailable. Then, and as indicated by the block 162, public-networkaccess is selectably attempted by way of second-authentication typeconnections, if available. Then, and as indicated by the block 164,network access availability is identified in response to thepublic-network access attempts. The public network access comprises, forinstance, home network access of a home network of a mobile station,such as the HPLMN of the mobile station.

Thereby, manner is provided by which to facilitate home-network accessby a roaming wireless device by way of WLANs that are both 802.1xcapable and wireless local area networks that are non-802.1x-capable.

Presently preferred embodiments of the disclosure have been describedwith a degree of particularity. The description is of preferred examplesfor implementing the disclosure, and the description of the preferredexamples is not necessarily intended to limit the scope of thedisclosure. The scope of the disclosure is defined by the followingclaims.

1. An access network method for facilitating public -network access by awireless device, said method comprising: determining public-networkaccess availability via first-authentication type connections;selectably attempting public-network access via second-authenticationtype connections, if available; and identifying network accessavailability responsive to public-network access availability determinedduring said determining and during said selectably attempting thepublic-network access via the second-authentication type connections. 2.The access method of claim 1 wherein said determining the public networkaccess availability via the first authentication type comprisesdetermining the public-network access availability via 802.1x accessprocedures.
 3. The access method of claim 1 wherein said selectablyattempting the public-network access via the second authentication typecomprises attempting the public-network access via a non-802.1x directconnection procedure.
 4. The access method of claim 3 wherein the directconnection procedure comprises a tunnel procedure.
 5. The access methodof claim 1 further comprising obtaining information of availability ofthe first-authentication type connection.
 6. The access method of claim1 wherein said obtaining comprises performing network scans to detectbroadcasts of the information of the availability of the firstauthentication type connection.
 7. The access method of claim 1 furthercomprising obtaining information of availability of the secondauthentication type connection.
 8. The access method of claim 1 whereinsaid obtaining comprises performing network scans to detect broadcastsof the information of the availability of the second authentication typeconnection.
 9. The method of claim 1 further comprising determiningwhether to attempt the public-network access via the secondauthentication type connections.
 10. The method of claim 9 wherein saiddetermining whether attempt the public-network access further comprisesaccessing a wireless-device-stored permission indication.
 11. The methodof claim 10 wherein said accessing the wireless-device-stored permissionindication comprises accessing the wireless-device-stored permissioninformation at a removable memory elementary engageable with thewireless device.
 12. The method of claim 10 wherein said accessing thewireless-device-stored permission indication comprises accessing thewireless-device-stored permission information at a wireless-deviceinternal memory element.
 13. The method of claim 12 wherein thewireless-device-stored permission information at the wireless-deviceinternal memory comprises OMA DM formatted information.
 14. The methodof claim 1 wherein said selectably attempting comprises selectablyattempting public-network access via an open-access authenticatedconnection.
 15. The method of claim 1 wherein said selectably attemptingpublic-network access via a splash-screen authenticated connection. 16.The method of claim 1 wherein said determining comprises determininghome network access availability.
 17. An apparatus for facilitatingpublic-network access by a wireless device, said apparatus comprising: apublic-network access availability determiner configured to determinepublic-network access availability via first authentication-typeconnections; a public-network access attempter configured selectably toattempt public-network access via second authentication-typeconnections, if available; and an identifier configured to identifynetwork availability responsive to public-network access availabilitydetermined by said public-network access availability determiner andattempts by said public-network access attempter.
 18. The apparatus ofclaim 17 wherein said public-network access availability determiner isconfigured to determine public-network access availability via 802.1xaccess procedures.
 19. The apparatus of claim 17 wherein saidpublic-network access attempter is configured to attempt public-networkaccess via a non-802.1x direct connection procedure.
 20. The apparatusof claim 19 wherein the direct connection procedure comprises a tunnelprocedure.
 21. The apparatus of claim 17 further comprising a memoryelement configured to store a permission indication and wherein saidpublic-network access attempter is configured to select whether toattempt the public-network access via the second authentication-typeconnections, if any, responsive to the permission indication.
 22. Theapparatus of claim 17 wherein said public-network access availabilitydeterminer is configured to determine home-network access availability.23. An apparatus for facilitating wireless-device access to a publicnetwork, said apparatus comprising: an access grantor positioned at thepublic network, said access grantor configured selectably to grantwireless-device access responsive to a first access request received viaa first authentication-type connection and responsive to a second accessrequest received via a second authentication-type connection; and anauthenticator configured to authenticate any of the first access requestand the second access request, grant of access by said access grantormade responsive to authentication by said authenticator.
 24. A methodfor facilitating wireless-device access to a public network, said methodcomprising: detecting any of a first access request received via a firstauthentication-type connection and a second access request received viaa second authentication-type connection; authenticating any of the firstaccess request and the second access request; and grantingwireless-device access to the public network if authenticated duringsaid authenticating.